[XERCESC-2199] Add fuzzer source code - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Test
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: Samples/Tests
Labels:
- pull-request-available

External issue URL:
https://github.com/apache/xerces-c/pull/2

Description

As discussed on the mailing list and [in this PR|https://github.com/apache/xerces-c/pull/2|https://github.com/apache/xerces-c/pull/2], this patch adds the fuzzing harnesses written by @bshastry and me to the xerces upstream. An initial integration into oss-fuzz already uncovered some bugs. Integrating the fuzzing harnesses into upstream provides a cleaner way to test the xerces code.

The purpose of this PR and the integration of xerces into oss-fuzz is to allow parts of xerces' code to be continuously fuzzed, which would probably result in the detection of security bugs early on in the development process. It also adds the possibility for developers the build the fuzzers themselves, providing the opportunity to immediately fuzz their code prior to commiting if they are interested.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

add_fuzzers.patch
22/May/20 13:27
37 kB
Vincent Ulitzsch

Activity

People

Assignee:: Unassigned

Reporter:: Vincent Ulitzsch

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 22/May/20 13:28

Updated:: 22/May/20 13:28